Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Block any root Privilege
Operating Systems Linux Red Hat Block any root Privilege Post 303037916 by hicksd8 on Saturday 17th of August 2019 10:11:13 AM
Old 08-17-2019
In addition to which operating system you are dealing with (as asked by Neo), can you please tell us what problem you are trying to solve.

The basic concept of any operating system kernel includes security in that, upon a new installation, a single superuser ('root' on Unix/Linux and 'administrator' on Windows) has ultimate control. Unless the superuser "gives away" access rights nobody else can just take them. If rights are given away (e.g. via sudoers file) they can always be rescinded by the superuser. What are you trying to do here?
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Run non-root script as root with non-root environment

All, I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies

2. Solaris

root privilege

Hello All, I need your help to know how i can give regular user ALL root privileges. If there is any way pleas help me :) Regards, Ahmad (7 Replies)
Discussion started by: ahmad_one
7 Replies

3. Solaris

Want to block ftp for root user

Hi Friends, I would like to block the root user for doing ftp. As I am aware that I need to put the entry for root in /etc/ftpusers.....am I right...??? But I am not able to edit the file & even more command is not working. #ls -l ftp* total 14 -rw-r--r-- 1 root sys 1249 Jun... (3 Replies)
Discussion started by: jumadhiya
3 Replies

4. Linux

shrinking root partition and using free space to create a block device

We are intending to protect a set of user specified files using LVM mirroring where the protected space on which the user files are stored is mirrored on an LV on a different disk. Our problem is that for a user with a custom layout has installed linux with 2 partitons for swap and / and there is... (0 Replies)
Discussion started by: kickdgrass
0 Replies

5. Solaris

Root privilege for user

Can anyone please tell how to give root privilege to a normal user in solaris 10? (5 Replies)
Discussion started by: nicktrix
5 Replies

6. Red Hat

How do I run my "SMTP" service as a root privilege ?

Friends , i want to run my smtp service as a root . let me know what r the changes i have to made to my machine . AVklinux (1 Reply)
Discussion started by: avklinux
1 Replies

7. UNIX for Dummies Questions & Answers

How to get the mouse wheel to work without root privilege

Hi, I use a nomachine terminal to access KDE desktop(redhat linux enterprise) on a server. Is there any way to get the mouse wheel to work without root privilege ? I have a usb mouse connected to a nomachine terminal,most likely the mouse wheel problem is not the problem of nomachine, but... (1 Reply)
Discussion started by: grossgermany
1 Replies

8. AIX

Block root user in system console - aix 5.3

How to block the root user login in system direct console. Users should login with non-root ids themselves and then use the su command to become root. Which configuration file i need to check and disable it. (5 Replies)
Discussion started by: kmvinay
5 Replies

9. UNIX for Advanced & Expert Users

For this process, do we need to block Root access???

Hi all, actually my scenario is we are running a webserver using apache-tomcat in that our client uploading resumes, so that particular space we are allowed to upload for that we are running java in root permission, so even we changed the particular folder permission also inside the Webapps but... (1 Reply)
Discussion started by: anishkumarv
1 Replies

10. Solaris

Migration of system having UFS root FS with zones root to ZFS root FS

Hi All After downloading ZFS documentation from oracle site, I am able to successfully migrate UFS root FS without zones to ZFS root FS. But in case of UFS root file system with zones , I am successfully able to migrate global zone to zfs root file system but zone are still in UFS root file... (2 Replies)
Discussion started by: sb200
2 Replies

LEARN ABOUT OPENSOLARIS

keylogin

keylogin(1)							   User Commands						       keylogin(1)

NAME

       keylogin - decrypt and store secret key with keyserv

SYNOPSIS

       /usr/bin/keylogin [-r]

DESCRIPTION

       The  keylogin command prompts for a password, and uses it to decrypt the user's secret key. The key can be found in the /etc/publickey file
       (see publickey(4)) or the  NIS map ``publickey.byname'' or the  NIS+ table ``cred.org_dir'' in the user's  home	domain.  The  sources  and
       their  lookup  order are specified in the /etc/nsswitch.conf file. See nsswitch.conf(4). Once decrypted, the user's secret key is stored by
       the local key server process, keyserv(1M). This stored key is used when issuing requests to any secure RPC services, such as NFS  or  NIS+.
       The program keylogout(1) can be used to delete the key stored by keyserv .

       keylogin  fails if it cannot get the caller's key, or the password given is incorrect. For a new user or host, a new key can be added using
       newkey(1M), nisaddcred(1M), or nisclient(1M).

       If multiple authentication mechanisms are configured for the system, each of the configured mechanism's secret key is decrypted and  stored
       by  keyserv(1M). See nisauthconf(1M) for information on configuring multiple authentication mechanisms.

OPTIONS

       The following options are supported:

       -r    Update  the  /etc/.rootkey file. This file holds the unencrypted secret key of the superuser. Only the superuser can use this option.
	     It is used so that processes running as superuser can issue authenticated requests without requiring that the  administrator  explic-
	     itly  run	keylogin  as superuser at system startup time. See keyserv(1M). The -r option should be used by the administrator when the
	     host's entry in the publickey database has changed, and the /etc/.rootkey file has become out-of-date with  respect to the actual key
	     pair  stored  in  the  publickey  database. The permissions on the /etc/.rootkey file are such that it can be read and written by the
	     superuser but by no other user on the system.

	     If multiple authentication mechanisms are configured for the system, each of the configured mechanism's secret keys is stored in  the
	     /etc/.rootkey file.

FILES

       /etc/.rootkey	superuser's secret key

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       chkey(1),  keylogout(1), login(1), keyserv(1M), newkey(1M), nisaddcred(1M), nisauthconf(1M), nisclient(1M), nsswitch.conf(4), publickey(4),
       attributes(5)

NOTES

       NIS+ might not be supported in future releases of the Solaris operating system. Tools to aid the migration from NIS+ to LDAP are  available
       in the current Solaris release. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.11							    2 Dec 2005							       keylogin(1)
All times are GMT -4. The time now is 02:03 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy